Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/haletran/42_cloud-1

Deploy a fully functionnal Wordpress instance on the cloud using Docker and Ansible
https://github.com/haletran/42_cloud-1

Last synced: 5 months ago
JSON representation

Deploy a fully functionnal Wordpress instance on the cloud using Docker and Ansible

Awesome Lists containing this project

README 

          
# 42_Cloud-1



## TODO



- [x] Need to replace Ansible yml file for container creations into a docker compose

- [x] Setup TLS/https with duckdns domain

- [x] Setup Caddy as proxy instead of raw port

- [x] Setup .env generation and copy

- [x] Add automatic way to connect to a server (ssh key generation)

- [ ] Add custom user instead of root (like ansuser or else) and check if container already exist etc...

- [ ] Add check for distro in installation docker to make this compatible with every server distro

- [x] Make persistent data with volumes



## Project



The VPS on `Vultr` is running on Ubuntu 20.04.1 LTS (GNU/Linux 5.4.0-42-generic x86_64) as required by the subject.

This VPS will be were the project will run, so the launch of everything can be done on the actual computer and

then it will be deployed on the VPS. 



Basically the goal of this project is to deploy a fully functionnal `Wordpress` instance on a `VPS` using `Docker` and `Ansible`.



[Subject](https://cdn.intra.42.fr/pdf/pdf/147805/en.subject.pdf)



Requirements



### REQUIREMENTS



- Install Docker and docker-compose

```bash

sudo apt install apt-transport-https ca-certificates curl software-properties-common

curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo apt-key add -

sudo add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/ubuntu focal stable"

sudo apt install docker-ce docker-compose

```



- Install Ansible (Configuration Management tool) 

```bash

sudo apt-add-repository ppa:ansible/ansible

sudo apt update && sudo apt install ansible

```



`Ansible` use declarative push-based YAML code to automate the configuration of the server,

called `Playbooks`.



```yaml

## basic example of an Ansible playbook that installs and starts the Nginx web server on a group of remote servers

---

- name: Install and start Nginx

  hosts: web_servers

  become: yes  # Run tasks with sudo



  tasks:

    - name: Install Nginx

      apt:

        name: nginx

        state: present

      when: ansible_os_family == "Debian"



    - name: Install Nginx on RedHat-based systems

      yum:

        name: nginx

        state: present

      when: ansible_os_family == "RedHat"



    - name: Start and enable Nginx

      service:

        name: nginx

        state: started

        enabled: yes

```



```bash

# Run the playbook to install and start Nginx on the web_servers group

ansible-playbook deploy.yml



# Run the playbook on a remote server

ansible-playbook ./src/playbook/deploy.yml -i ./src/inventory/hosts --user root --ask-pass --ask-become-pass



# To connect to the remote servers and run commands

ansible -i src/inventory/hosts ubuntu -m ping --user root --ask-pass

```



### CONTAINERS



The Ansible playbook will deploy the following containers automatically:



- `Wordpress` (CMS) 

- `MySQL` (Database) 

- `PHPMyAdmin` (Database Management) 

- `Caddy` (Web Server - it will setup the TLS/https)

- `DuckDNS` (Dynamic DNS)

- `Portainer` (Container Management)



### To setup the ssh connection token



Get the .pub token of your computer and add it to `known_hosts` file on your server. 



Then you should be able to connect to your server without password,

then for Ansible, add your private_key (of your computer) to the .cfg

of Ansible in this field : 



```conf

## in my case this

private_key_file = ~/.ssh/id_rsa

```



### Setup .env



For .env, i'm using ansible-vault to encrypt the file and then decrypt it when needed.

And I'm using jinja2 (env.j2) template to generate the .env file with the encrypted password.



```bash

# Encrypt the .env file

ansible-vault encrypt vault.yml

# To edit it

ansible-vault edit vault.yml

# To decrypt it

ansible-vault decrypt vault.yml

```



Example of the vault.yml file:



```yaml

# vault.yml

db_root_password: "root"

db_name: "wordpress"

```



## How to run the project 



```bash

## launch the nix-shell

NIXPKGS_ALLOW_UNFREE=1 nix-shell flake.nix

```



```bash

make all

## or

ansible-playbook playbook/install_docker.yml #no need for other args since  everything is setup in ansible.cfg

ansible-playbook playbook/install_container.yml

```



Access all the web services with the following links:



- `Wordpress` : [wordpress.bapasqui-cloud1.duckdns.org](https://wordpress.bapasqui-cloud1.duckdns.org)

- `PHPMyAdmin` : [phpmyadmin.bapasqui-cloud1.duckdns.org](https://phpmyadmin.bapasqui-cloud1.duckdns.org)

- `Portainer` : [portainer.bapasqui-cloud1.duckdns.org](https://portainer.bapasqui-cloud1.duckdns.org)



### Some ressource for the project



- [Ansible tutorial: install Wordpress with Ansible playbook (video)](https://www.youtube.com/watch?v=Gxbj28ZoUbI)

- [Automate your Docker deployments with Ansible (video)](https://www.youtube.com/watch?v=CQk9AOPh5pw)

- [This web UI for Ansible is so damn useful!(video)](https://www.youtube.com/watch?v=Gxbj28ZoUbI)

- [Things I wish I knew about Ansible from day 1(video](https://www.youtube.com/watch?v=Gxbj28ZoUbI)

- [Automate EVERYTHING with Ansible! (Ansible for Beginners)(video](https://www.youtube.com/watch?v=Gxbj28ZoUbI)

- [Ansible docker(docs of a video)](https://github.com/christianlempa/videos/tree/main/ansible-and-docker)

- [Setup Caddy on docker](https://thriveread.com/caddy-reverse-proxy-server-docker-compose)